The Hacker News19h
Meta's Llama Framework Flaw Exposes AI Systems to Remote Code Execution Risks
"Affected versions of meta-llama are vulnerable to deserialization of untrusted data, meaning that an attacker can execute ...
The Hacker News19h
SonicWall Urges Immediate Patch for Critical CVE-2025-23006 Flaw Amid Likely Exploitation
Critical SonicWall zero-day (CVE-2025-23006) in SMA 1000 appliances fixed. Rated 9.8 CVSS; patch now to prevent active ...
The Hacker News2d
2025 State of SaaS Backup and Recovery Report
This article shares critical findings from the 2025 State of SaaS Backup and Recovery Report, which gathered data from over 3 ...
The Hacker News2d
Android's New Identity Check Feature Locks Device Settings Outside Trusted Locations
Google's Identity Check locks sensitive Android settings behind biometrics, enhancing security outside trusted locations.
The Hacker News1d
CISA Adds Five-Year-Old jQuery XSS Flaw to Exploited Vulnerabilities List
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday placed a now-patched security flaw impacting the ...
The Hacker News2d
DoJ Indicts 5 Individuals for $866K North Korean IT Worker Scheme Violations
The action targets Jin Sung-Il (진성일), Pak Jin-Song (박진성), Pedro Ernesto Alonso De Los Reyes, Erick Ntekereze Prince, and ...
The Hacker News3d
PlushDaemon APT Targets South Korean VPN Provider in Supply Chain Attack
PlushDaemon APT targets South Korean VPN with SlowStepper backdoor. Multistage DNS C&C protocol aids espionage.
The Hacker News3d
QakBot-Linked BC Malware Adds Enhanced Remote Access and Data Gathering Features
The BC malware has also been the subject of an independent analysis by Sophos, which attributed the artifacts to a threat ...
The Hacker News3d
Custom Backdoor Exploiting Magic Packet Vulnerability in Juniper Routers
Rare malware targets Juniper routers in the J-magic campaign, exploiting JunoOS and impacting industries like IT, energy, and ...
The Hacker News3d
Trump Terminates DHS Advisory Committee Memberships, Disrupting Cybersecurity Review
DHS terminates advisory committees, including CSRB, halting investigations into Chinese cyberattacks and AI safety.
The Hacker News3d
Mirai Variant Murdoc Botnet Exploits AVTECH IP Cameras and Huawei Routers
New Murdoc_Botnet exploits CVE-2024-7029 and CVE-2017-17215 to infect 1,370+ devices, targeting IoT vulnerabilities for ...
The Hacker News4d
President Trump Pardons Silk Road Creator Ross Ulbricht After 11 Years in Prison
Trump pardons Ross Ulbricht, Silk Road creator, overturning life sentences for running a $200M dark web marketplace.